[packages/php] - up to 7.4.2; fixes CVE-2020-7060, CVE-2020-7059

Thu Jan 23 09:17:17 CET 2020

commit 5a053ca817f06238eb55a13d0aa2576a3b379aa9
Author: Arkadiusz Miśkiewicz <arekm at maven.pl>
Date:   Thu Jan 23 09:17:05 2020 +0100

    - up to 7.4.2; fixes CVE-2020-7060, CVE-2020-7059

 php.spec | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)
---

diff --git a/php.spec b/php.spec
index 47c00cb..90c7409 100644
--- a/php.spec
+++ b/php.spec
@@ -150,7 +150,7 @@ Summary(pt_BR.UTF-8):	A linguagem de script PHP
 Summary(ru.UTF-8):	PHP Версии 7 - язык препроцессирования HTML-файлов, выполняемый на сервере
 Summary(uk.UTF-8):	PHP Версії 7 - мова препроцесування HTML-файлів, виконувана на сервері
 Name:		%{orgname}%{php_suffix}
-Version:	7.4.1
+Version:	7.4.2
 Release:	1
 Epoch:		4
 # All files licensed under PHP version 3.01, except
@@ -159,7 +159,7 @@ Epoch:		4
 License:	PHP 3.01 and Zend and BSD
 Group:		Libraries
 Source0:	https://php.net/distributions/%{orgname}-%{version}.tar.xz
-# Source0-md5:	6282f607a87c91b56ca14c3aacdba969
+# Source0-md5:	49a6e2bafa7134386e1b54c6b1c41ed5
 Source1:	opcache.ini
 Source2:	%{orgname}-mod_php.conf
 Source3:	%{orgname}-cgi-fcgi.ini
@@ -1908,6 +1908,10 @@ cp -p php.ini-production php.ini
 #%patch68 -p1 DROP or update to 7.0 APIs
 %patch71 -p1
 
+sed -E -i -e '1s,#!\s*/usr/bin/env\s+(.*),#!%{__bindir}\1,' \
+      ext/ext_skel.php \
+      run-tests.php
+
 %{__sed} -i -e '/PHP_ADD_LIBRARY_WITH_PATH/s#xmlrpc,#xmlrpc-epi,#' ext/xmlrpc/config.m4
 
 # cleanup backups after patching
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/php.git/commitdiff/5a053ca817f06238eb55a13d0aa2576a3b379aa9

